indexo.dev

bluvegas.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-04 · ok HTTP/1.1 200 1995 ms crawled 2026-05-07

US · 172.64.151.47 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
BluVegas Casino | €2000 Welcome Bonus + 125 Free Spins
Description
BluVegas Casino is an KGC-licensed casino, hosting 2,5K games by the world’s top providers. Join BluVegas Casino and get 125 Free Spins a €2000 Welcome bonus!
Language
undefined

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • code.jquery.com×1
  • fonts.googleapis.com×1
  • www.googletagmanager.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2018-10-01
Expires
2026-10-01 133 days left
Updated
2025-10-01
Name servers
  • kia.ns.cloudflare.com
  • west.ns.cloudflare.com

DNS records live

NS
  • kia.ns.cloudflare.com
  • west.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google

Email authentication strong

SPF
v=spf1 include:spf.zoho.eu include:eu.transmail.net include:spf.zohomail360.eu include:rnmk.com include:mail.zendesk.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:dmarc-reports@bluvegas.com; sp=none
policy: none (monitoring only) · sp=none
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxMllwcHtppIrpn7w2westS/JGVjoAX2/P++Hr8g+tq1xHZHKsVaKyO6g/aGWOX7Is/mKSfD/xmx9LEXfD…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6w4bq2fdK0tSkdu1GYsthKLTj6xaLQP76lA4oUxoGWahBr0JCbbESw9Jvxmt8cjxAWY9/U6/Fj+xHsDrj…
selectors probed

Certificate (current)

WE1
from 2026-04-25 to 2026-07-24
Expires in 64 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://bluvegas.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
ALLOW-FROM http://webvisor.com
x-content-type-options
nosniff
content-security-policy
default-src *; script-src * 'self' 'unsafe-inline' 'unsafe-eval' https://*.smartlook.com https://*.smartlook.cloud; style-src * 'self' 'unsafe-inline' blob:; img-src 'self' * data:; connect-src * https://*.smartlook.com https://*.smartlook.cloud; font-src * 'self'; frame-src *; object-src * 'self'; media-src *; worker-src * 'self' blob:; child-src * 'self'
strict-transport-security
max-age=31536000; includeSubDomains

Linked from (1)